Platform Explorer / Nuxeo Platform LTS 2019 10.10

Contribution org.nuxeo.ecm.login.token.authentication.contrib--authenticators

In component org.nuxeo.ecm.login.token.authentication.contrib
This contribution is part of XML component org.nuxeo.ecm.login.token.authentication.contrib inside nuxeo-platform-login-token-10.10.jar /OSGI-INF/token-authentication-contrib.xml

Documentation

Authentication plugin using a token to validate identity. This token is sent as a HTTP request header.

The user is retrieved looking into a directory mapping unique tokens to user names.

This Authentication Plugin is configured to be used with the Trusting_LM LoginModule plugin => no password check will be done, a principal will be created from the userName if the user exists in the user directory.

Set the allowAnonymous parameter to true to allow token authentication for anonymous user.

Antoine Taillefer (ataillefer@nuxeo.com)

Extension Point

Extension point authenticators of component PluggableAuthenticationService.

Registration Order

8
The registration order represents the order in which this contribution was registered on its target extention point. This will impact the override/merge behaviour when it is implemented on the target service, and is useful for proper customization of existing contributions.
You can influence this order by adding "require" tags in the containing component declaration, to make sure it is resolved after another component (see "Resolution Order" on components).

Contributed Items

  • <authenticationPlugin class="org.nuxeo.ecm.platform.ui.web.auth.token.TokenAuthenticator" enabled="true" name="TOKEN_AUTH">
      <loginModulePlugin>Trusting_LM</loginModulePlugin>
      <parameters>
        <parameter name="allowAnonymous">false</parameter>
      </parameters>
    </authenticationPlugin>

XML Source

<?xml version='1.0' encoding='UTF-8'?>
<extension point="authenticators" target="org.nuxeo.ecm.platform.ui.web.auth.service.PluggableAuthenticationService">

    <documentation>
      Authentication plugin using a token to validate
      identity. This token is sent as a HTTP request header.

      The user is retrieved looking into a directory mapping unique tokens to user names.

      This Authentication Plugin is
      configured to be
      used with the Trusting_LM LoginModule plugin
      => no password check will be done, a
      principal will be
      created from the userName if the user exists in the user directory.

      Set the allowAnonymous parameter to true to
      allow token authentication for anonymous user.

      @author
      Antoine Taillefer (ataillefer@nuxeo.com)
    </documentation>

    <authenticationPlugin class="org.nuxeo.ecm.platform.ui.web.auth.token.TokenAuthenticator" enabled="true" name="TOKEN_AUTH">
      <loginModulePlugin>Trusting_LM</loginModulePlugin>
      <parameters>
        <parameter name="allowAnonymous">false</parameter>
      </parameters>
    </authenticationPlugin>

  </extension>